Welcome to the Web Exploitation track of Shellpaths, an internal knowledge-sharing initiative by Shellmates Club.
This repository hosts the resources, notes, and exercises for the Web Exploitation path. This series is crafted to guide you from the fundamentals of how the web works to advanced exploitation techniques.
Whether you are a complete beginner or looking to solidify your understanding of web security, this path will provide the theoretical knowledge and practical skills needed to identify and exploit web vulnerabilities.
Focus: Fundamentals of Web Applications & HTTP
- Topics Covered:
- Web Architecture (Client-Server, Front-end vs Back-end)
- HTTP Protocol Fundamentals (Requests, Responses, Headers)
- HTTPS & Security
- Security Testing Methodologies (Blackbox, Whitebox, Greybox)
- Essential Tools (Browser DevTools, cURL, Burp Suite)
Stay tuned for future workshops in this series! We plan to cover topics such as:
- OWASP Top 10 Vulnerabilities
- Injection Attacks (SQLi, XSS, Command Injection)
- Authentication & Session Management
- Server-Side Vulnerabilities
- Client-Side Attacks
Stay curious, and keep working hard!